Cybersecurity and Information Security policy framework

Cookie Settings
Type of Cookie	Purpose	Third party involved	Preference
Technical Cookies	These are cookies that allow the website to function correctly.	(Liferay/Dynatrace, Google). You can obtain more information about the third party cookies that are installed in the Cookies Policy and in the following links: Dynatrace (Liferay): https://www.dynatrace.com/support/help/how-to-use-dynatrace/data-privacy-and-security/data-privacy/cookies/ Google: https://policies.google.com/technologies/cookies?hl=en	Enabled
Preference or customization cookies	They allow the user to remember information so that the user can access the service with certain characteristics that can differentiate their experience from that of other users.	Google https://policies.google.com/technologies/cookies?hl=en	Disabled Enabled
Analysis or measurement cookies	They are those that allow us to quantify the number of users and therefore carry out the measurement and statistical analysis of the use made by users of our website.	More information about Google Analytics can be found at: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=en	Disabled Enabled
Behavioral Advertising Cookies	These are cookies designed and used for the management, in the most efficient way possible, of the advertising spaces shown to the user, through the advertising service in response to their profile and interests.	Google uses cookies for advertising purposes, such as serving and rendering ads, personalizing ads (based on the user's ad settings at g.co/adsettings), limiting the number of times an ad is shown to a user, hide ads that the user has indicated they don't want to see again, and measure the effectiveness of the ads. Doubleclick: In the case of Google Ad Manager or Google Marketing Platform advertising products, third-party cookies used for advertising purposes may be associated with doubleclick. net or to country-specific Google domains, such as google.com. https://support.google.com/searchads/answer/2839090?hl=en	Disabled Enabled
More information about our Política de Cookies.
Enable all Save selection

Policies

Information Security Policy

Information Management Policy

Technological Resources Usage Policy

Standards

01. Glossary of Definitions

02. Databases - Security criteria for development and implementation of databases.

03. Encryption - Criteria for the implementation of encryption Technologies.

04. Access Control - Access management for applications and information systems.

05. Information System Configuration and Change Control - Minimum requirements to be enforced in the management and control of technological means in endpoints.

06. Portable Devices - Principles and required measures to safeguard the confidentiality, integrity, and availability of information accessed or processed via mobile devices.

07. Backup Management - Security criteria for backups.

08. Incident Management - Incident Response Management.

09. Systems Laboratories - Security guidelines for information system test environments.

10. Network Security Standard - Security criteria for network deployment and interconnection and the security guidelines for wireless network environments.

11. Password Security Standard - Minimum principles that passwords must comply with.

12. Privacy on FCC Group - Basic principles that must be observed and complied with in the processing of Personal Data by the FCC Group Entities.

13. Software Development Security - Standard applicable to projects involving the development and maintenance of applications and software used across the FCC Group.

14. Information Security Policy for External Companies - Security criteria applicable to the procurement of services from third party companies outside the FCC Group.

15. Document Security - Security principles in the management of documents.

16. Physical Security of Installations - Security principles to be enforced in FCC facilities where information is processed.

17. Information Security Roles and Responsabilities Standard - Roles and Responsibilities for Information Security.

18. Return and Disposal of Technological Media Standard - Actions to be undertaken upon the termination a person who has been assigned equipment owned by the FCC Group.

19. GDPR Compliance - Principles and minimum requirements to be complied with by the FCC Group entities to which this Regulation applies.

20. Use of Cookies - Guidelines for managing the use of cookies on websites under the FCC Group domains.

21. Security Monitoring - Requirements for the monitoring of security events in information systems.

22. Domain registration and management – Standard applicable to FCC Group domain registration and management.